cross-posted from: https://lemmy.world/post/37454125

Hi All,

my first post over here on lemmy. Thought I'd share my forked tempo release.

Some new fixes for October. v3.17.14

What's Changed

fix: General build warning and playback issues 
fix: persist album sort preference 
Fix album parse empty date field 
fix: Include shuffle/repeat controls in f-droid build's media notific… 
fix: limits image size to prevent widget crash 

note app-tempo* <- The github release with all the android auto/chromecast features

app-notquitemy* <- The f-droid release that goes without any of the google stuff.

Full Changelog: https://github.com/eddyizm/tempo/compare/v3.17.0...v3.17.14

As usual, any dev contributions appreciated as I am not actually a java/mobile dev, so my progress is significantly slower than those who do this on the daily.

In particular, any android dev is familiar with changing the name/icon in order get this app published in app stores.

IMPORTANT NOTE - READ FIRST:

While this can be selfhosted, YOU SHOULDNT! ... NONE of my projects have been audited or reviewed. I provide them for testing and demo purposes only. NOT to replace any other app you use.

BE RESPONSIBLE WHEN USING UNAUDITED SOFTWARE... DO NOT USE FOR SENSITIVE PURPOSES.

Now that I've hit you over the head with caution...

Want to send encrypted WebRTC messages and video calls with no downloads, no sign-ups and no tracking?

This prototype uses WebRTC to establish an encrypted browser-to-browser connection. Everything is stored locally in browser storage and cleared when you clear the site data from your browser - true zerodata privacy!

• Demo: https://chat.positive-intentions.com/
• Github: https://github.com/positive-intentions/chat
• Website: https://positive-intentions.com/
• Mastodon: https://infosec.exchange/@xoron

I have 2 servers both running a Debian VM each. The old VM was one of the first o installed several years ago when I knew lityle and its messed up and has little space left. It running on Truenas Scale and has a couple of docker apps that I'm very dependent on (Firefly, Hammond). I want to move the datasets for these docker apps to a newer VM running on Proxmox server. It a Debian 13 VM with loads of space. What are my options for moving the data given neither Firefly nor Hammond have the appropriate export / import functions? I could migrate the old VM that that wouldn't resolve my space issue. Plus it Debian 10 and it would take a lot to being it up to Trixie.

Howdy folks,

I’ve come upon a solid amount of 4tb drives, 8 SAS drives for dirt cheap from a local biz. Never used. I saw a HP ProLiant DL385p Gen8 Server on eBay for $80 and thought it was a score since it had been the best deal. I’d been wanting to upgrade off my think center m710. Curious any recommendations for this? My current setup is as follows:

Main server:

Lenovo think center m710

16gb, gt 1030, 2 4tb HDD sata, one 500gb ssd sata

Ubuntu lts

Docker compose

• Arr stack -Gluetun with open on proton in Germany -qbittorrent -sonarr -radarr -Overseer -cleanuparr -prowlarr -plex -navidrome -audiobookshelf -Minecraft server (modded: neoforge itzg) -immich -bunch of others that aren’t fully working like tatuli or plex wrapped

Secondary Thinkpad x220 (loved this shit through college) 16gbRAM, 250ssd sata Arch Docker compose -searxng -pihole dns

I’m still looking in to some security system ideas as I’d like to use some storage and maybe do that with some of it. Or some cybersecurity projects or a banned book library or something. I’m open to any suggestions to help this go as smooth as I can make it and as fun as it can be.

Good day folks, my company recently gave me some hardware, one in particular I’m curious if there are any real use cases for it. I’m not particularly well with networking. This device is a Cisco Meraki MX64. I saw it doesn’t support open WRT so I’m curious if there are any other known projects or alternative software that could run on it. I’d love to toss it in with my network stack but all I have now is just a switch that it’ll plug in to but would love to replace e switch with it.

Let's say I have a domain called mysite.com

mysite.com points to a server which only opens port 443, and each connection will need to go through that and deal with Caddy reverse proxy.

I want to host more services on it.

Let's say I want to host an email service, the easiest thing would be using a subdomain such as mail.mysite.com and reverse proxy each connection to the internal port on which the service run.

Same with a chat service chat.mysite.com.

But for the sake of readability it would be much better to simply have username@mysite.com than username@mail.mysite.com or username@chat.mysite.com.

reverse proxying every request from a subdomain to the right port is pretty straightforward with Caddy, also if you use cloudflare you can proxy with cloudflare each subdomain and have auto SSL certificate without further set up, which is amazing!

But what if I do want my services to be accessed through mysite.com directly instead of a specific per-service subdomain?

Some federated services also have two separate ports for server requests and client requests, which further complicates the process..

Is this service specific and must configured individually for each service? Or there is a way to tell caddy that a specific request going through mysite.com should be redirected through port X.X.X.X? Is there a way Caddy can recognize where requests need to be directed?

I've been self hosting a matrix istance for a while, but I'm honestly really really tired of bugs on clients and authentication not working, I know matrix is very feature rich and is awesome that is federated, but I'd prefer to use something which loads my server less and which is more simple despite lacking some features, what do you think?

Hello everybody,

I want to ask for some opinions on my current setup and how I pretend to use it for my Media Server:

Current Layout

I currently use an UGREEN DXP2800 NAS running TrueNAS Scale with two 4 TB HDDs in Mirror mode. This is planned to be my "long-term storage" for backups, photos, and so on.

Additionally, I have 1 TB SSD installed in the system. I created two datasets on it: one for Docker containers and the other one for Media, following the TRaSH guides folder layout

My current plan:

My idea is to use the SSD for the torrents and the seeds, and once the file (e.g. the ~~movie ~~ Linux ISO Image) is completed, to move it to the HDDs. From there, Jellyfin would read the corresponding dataset and play the media.

The question:

The TRaSH guides puts a lot of emphasis on hardlinks and atomic moves, and that forces you to operate in one single filesystem. Is it worth it to stick to the TRaSH guide or my current setup would work just fine? What do y'all think?

Thanks in advance and happy self-hosting!

cross-posted from: https://lemmy.buddyverse.net/post/10438

I recently upgraded my network from a basic router to a Netgear GS108E Gigabit switch. Backups are now way faster, which is great… but now I’ve run into a new problem.

I run Proxmox Backup Server (PBS) in a VM on one of my servers (let’s call it Proxmox 2). PBS has 100 GB of cache storage since I’m using S3 as a datastore - it stores chunks locally before uploading to S3.

Here’s the issue: I try to backup a VM from another server (Proxmox 1). The VM’s storage is 300 GB, but actual usage is under 30 GB. Everything works fine until it hits 34% (104 GB of data). At that point, the PBS VM and the host server itself become completely unreachable. I have to force power off and restart.

I understand why PBS might crash – my VM has 4 GB RAM, 2 CPU cores, and my internet is only around 60–70 Mbps—but why would the host server hang as well?

Has anyone experienced something like this? Could it be networking, storage, or something else in Proxmox causing the host to become unresponsive when PBS gets busy? Any ideas or advice would be appreciated!

For further context: https://lemmy.buddyverse.net/post/5455

cross-posted from: https://lemmy.buddyverse.net/post/5454

Hello everyone, I’m fairly new to Proxmox and struggling with my homelab setup. I have two machines running Proxmox 9: an HP EliteDesk 800 G5 Mini (Core i7-9700) and a Dell OptiPlex 7070 Micro (Core i3 9th gen). I’m running into several issues and would appreciate your insights.

1. Networking Issue on EliteDesk: I have two VMs (both Ubuntu Server 24.04 LTS) on the same bridge (default vmbr0, I haven't modified any network settings in proxmox). If I stop or shut down one VM, the other loses internet connectivity. I can still access the applications from my home network using IP address (192.268.x.x).

2. Backup Setup on OptiPlex: I’m running a Proxmox Backup Server VM with Backblaze B2 as an S3 datastore. This is working fine so far.

3. Backup Problems on EliteDesk: I’m using default LVM-thin for VMs. Backups take a very long time and often freeze at 1-2%. Shutting down the VM cleanly afterward is nearly impossible. I’ve tried both Stop and Snapshot modes, but the issue persists. When a VM becomes unresponsive, it triggers the networking issue above. Would switching to ZFS help? If so, how can I migrate without losing any data?

4. Hardware Acceleration for Jellyfin: On the EliteDesk, I’d like to enable hardware acceleration for a VM running Jellyfin (in Docker) using the i7-9700’s UHD 630 iGPU. Can anyone recommend a clear guide specific to this CPU? The Proxmox documentation isn’t very detailed for Intel GPUs.

The networking issue is the most frustrating. Has anyone encountered similar bridge problems? Any advice on fixes or next steps would be greatly appreciated. Thank you!

Context: my father is a lawyer and therefore has a bajillion pdf files that were digitised, stored in a server. I’ve gotten an idea on how to do OCR in all of them.

But after that, how can I make them easily searchable? (Keep in mind that unfortunately, the directory structure is important information to classify the files, aka you may have a path like clientABC/caseAV1/d.pdf

selfh.st was a website that was included in my RSS feed for reading news about self hosting and such for a while now. I never felt it was that helpful for me since I usually add the release notes of the services I use individually on my feed. I would often read out of curiosity.

I also felt their feed was always very clunky to be honest, it was never formatted properly but at least there was content there. In the middle of the huge images there was at least a little bit of information to be seen.

9 months ago their feed broke (because they changed their domain or something like that) and since then, I noticed the website is kind of declining? I kind of hate the overuse of enshittification but there are no other words for me to define this. Many red flags were already ignored before by the way, including the usage of AI slop imagery and a change of interface for the worse, to include information about sponsors.

They started sending the feeds with: "This is a feature reserved to premium users" with a link to their website. Felt very icky.

I do NOT expect people that make content to keep doing it without support (we support a few independent news outlets, also donate every now and then to projects we use a lot), however the way they are trying to get said support is very.... weird. Like trying to boost numbers, if that makes sense? If done different I would gladly give them a subscription each month, but this hit me in a weird way.

Anyway, I won't be part of their audience anymore. Are there other websites which focus on self hosting have on your feed?

With the recent news, VPN bans being tested in western countries and even states like Michigan toying with new internet censorship; it’s had me thinking that I need to up my self hosting game. I currently use Truenas scale electric eel and I really am a novice with no formal education. I have a myriad of apps running, learned through YouTube tutorials, documentation, and AI. I tunnel out some of these services via cloudflare zero trust to a domain. I’ve got pi-hole running on the network and a VPN on my windows machine but that’s about it. It’s great! It works! It’s fun to tinker with and has allowed my family to ditch a lot of subscriptions. Browsing around, though, I see a lot of comments about different ways to secure servers. Everytime I try to learn about something such as VPS, reverse proxies it feels like an inundation of too much information and differing opinions. It seems like there are so many ways to do it that I really have no clue where to begin. I also don’t want to break what is currently working for me.

Anyone have a good idea on good sources to educate myself? Is it vital I learn how to run some sort of local service? How would hard government crackdown shutdown VPNs and what could a self-hoster do to avoid that? Be gentle. Thanks.

If I want a #selfhosted database backend for #n8n automations, what does @selfhost suggest? Baserow? Grist? Supabase?

Needs to run nicely in a Docker container on #TrueNAS.

IMPORTANT NOTES (PLEASE READ!):

• These are NOT products. They are for testing and demonstration purposes only.
• They have NOT been reviewed or audited. Do NOT use for sensitive data.
• All functionality demonstrated is experimental.
• These are NOT meant to replace robust solutions like VeraCrypt, Simplexchat, Signal, Whatsapp, wetransfer. It's a proof-of-concept to show what's possible with browser APIs.
• Cyber security is full of caveats, so reach out for clarity on any details if they can't be found in the docs.

Aiming to create the worlds most secure messaging app.

https://positive-intentions.com/docs/projects/chat

• Open Source
• Cross Platform
  • PWA
  • iOS, Android, Desktop (self compile)
  • App store, Play store (coming soon)
  • Desktop
    • Windows, MacOS, Linux (self compile)
    • Run index.html on any modern #browser
• Decentralized
• Secure
  • No Cookies
  • P2P E2EE encrypted
  • Forward secrecy
  • No registration
  • No installing
• Messaging
  • Group Messaging (coming soon)
  • Text Messaging
  • Multimedia Messaging
  • Screensharing (on desktop browsers)
  • Offline Messaging (in research phase)
  • File Transfer
  • Video Calls
• Data Ownership
  • SelfHosted
  • GitHub pages Hosting
  • Local-only storage

For more information on "how it works", check out: https://positive-intentions.com/blog/decentralised-architecture

(Degoogled links to the apps)

• P2P Chat: https://chat.positive-intentions.com/
• P2P File: https://file.positive-intentions.com/
• Encrypted drive storage: https://dim.positive-intentions.com/?path=%2Fstory%2Fusefs--encrypted-demo

More:

• GitHub: https://github.com/positive-intentions
• Mastodon: https://infosec.exchange/@xoron
• Reddit: https://www.reddit.com/r/positive_intentions

I'll be self-hosting a service with user submissions soon, so I'm worried about the https://howto.geoblockthe.uk/ situation.

Based on this I've wondered, are there any community maintained geo block lists that might be useful? All database options I found are either 1. an on-demand online service which seems questionable for privacy reasons, or 2. IPv4 only, or 3. have weird terms of use with a gag clause regarding the entire company making it and other weird stuff.

I'm not a fan of geo blocking in general, but the situation is what it is.

PS: Please don't discuss the Online Safety Act itself too much in the comments, or whether somebody should be using a geo ip to handle this. While I might appreciate useful input on that, I'm hoping this post can remain a resource for those who are looking for such a database for other reasons as well.

Homebox v0.21.0 released!

Homebox is proud to announce the release of version v0.21.0!

But first, what is Homebox?

Homebox is the inventory and organization system built for the Home User! With a focus on simplicity and ease of use. Homebox is the perfect solution for your home inventory, organization, and management needs.

About the update

We have officially released v0.21.0 and at the same time are making progress towards v1 (stable). This release covers a range of new features and bug fixes, including:

• Add product fetching using barcodes
• Support listening on unix sockets and systemd sockets
• Add plugin to set image sizes in Markdown
• Add support for postgres certificate authentication
• Hardened Docker images now available!
• Use aspect ratio when making thumbnails
• Fixes to Windows attachment paths
• Fix photo display issue when adding additional attachments to items
• ... And much more!

You can see a full list of changes here: Changelog

What about V1..?

Great news! We're making some solid progress towards a v1 release, and have documented our roadmap update here: Homebox v1 Roadmap: Update

Important Note
Our new -hardened suffixed docker images are experimental, and may have bugs not normally encountered in other docker builds.

Follow the Homebox journey

• On Discord: https://discord.homebox.software/
• On the web: https://homebox.software/
• On Github: https://git.homebox.software/
• Demo: https://demo.homebox.software/
• Translate Homebox: https://translate.sysadminsmedia.com/

After a lot of work, and a lot of trying, I couldn’t find FOSS software that properly syncs my family’s photos in the background (tried Immich, still not good enough despite the new beta timeline, kinda worked in 1.136, got kinda broken on 1.138, tried Nextcloud, but still haven’t gotten new photos to sync in the background. Ente is waaaay too complicated, with waaaay too many moving parts that can break). Given all of this, I gotta choose some prebuilt nas that can properly sync. I don’t like synology but apparently their background sync is ok. What about Qnap and Ugreen? Are they ok?

I'm a professional DevOps worker, and I recently got back into building my own services in the cloud, and I discovered Oracle Cloud Free Tier. It is full of goodies I couldn't resist, especially since my own personal server at home had gone down. In my quest to ensure that I spend absolutely no time in a terminal, I came across this other application called Cosmo Cloud that works a lot like CasaOS. It's got some bells and whistles, though, that CasaOS is missing like a secure reverse proxy complete with an application shield to prevent malicious attacks, central user management through the use of OpenID, multiple URLs can be locked down to individual users, and Cosmo offers a lot of flexibility when it comes to adding containers to your server.

Since it took me a couple of days to build a server, I thought I would write it down in a guide so I wouldn't forget it, and it's occurred to me that other people might appreciate some instructions on how to get all this configured securely.

This guide includes using cloudflare tunnels as the way to expose internet services as it adds another layer of protection between your server and the internet.

I've reviewed it pretty thoroughly but I probably wrote something down wrong or maybe I mistyped something. If you have any questions or need any help getting things configured, reach out to me and I'll do what I can.

This option works but sucks as a code editor.

Hey everyone, I'm currently trying to run Jellyfin with Tailscale using docker compose and a reverse proxy through Caddy. I'm using this guide to do this. After configuring the yaml, I tried to start things up and Tailscale and Jellyfin started, but Caddy wouldn't start and it gave the following error:

Error response from daemon: failed to create task for container: failed to create shim task: OCI runtime create failed: runc create failed: unable to start container process: error during container init: error mounting "/root/Jellyfin/jellyfin-tailscale/caddy/conf/Caddyfile" to rootfs at "/etc/caddy/Caddyfile": create mountpoint for /etc/caddy/Caddyfile mount: cannot create subdirectories in "/var/lib/docker/overlay2/325e35ec5a4c8d8bac5d7576e2deeb4b8365af027486e232ad78b458708b639b/merged/etc/caddy/Caddyfile": not a directory: unknown: Are you trying to mount a directory onto a file (or vice-versa)? Check if the specified host path exists and is the expected type

I checked the Caddy Image information here, and modified the yaml to mount the Caddyfile directory instead.

New code looks like this ~/Jellyfin/jellyfin-tailscale/caddy/conf:/etc/caddy

Now when I restart the services with Docker Compose, all three start, however Caddy (and therefore Jellyfin) won't run, they continually try restarting. By looking at it with docker logs caddy, I see that it throws out this error over and over:

Error: reading config from file: read /etc/caddy/Caddyfile: is a directory

I've inspected both the Caddyfile in /etc/caddy and in ~/Jellyfin/jellyfin-tailscale/caddy/conf using file Caddyfile, and both say they're Caddyfile: ASCII text.

What am I missing and how do I fix it?

EDIT: Forgot to put in links

Of course, after than, whatever you've just plugged into it, will most likely not work

502 Bad Gateway
504 Gateway Timeout
X-Forwarded-For

The solution is probably somewhere deep in the bowels of whatever you're trying to make work

It will look obvious once you've figured out, that's why it wasn't mentioned next to the bunch of instruction you pasted into your console to install the thing

Just another day walking in the forest of papercuts